Teach keycheck to ignore direct signatures on the primary key

Our code expects signatures to only be over UIDs; however there are legitimate reasons for a direct signature on the primary key, and sequoia seems to be more likely to create these. We can just ignore them, so do so rather than raising an exception.